This script is Copyright (C) 2005-2014 Tenable Network Security, Inc.
The remote Slackware host is missing a security update.
New mod_ssl packages are available for Slackware 8.1, 9.0, 9.1, and
-current to fix a security issue. The packages were upgraded to
mod_ssl-2.8.18-1.3.31 fixing a buffer overflow that may allow remote
attackers to execute arbitrary code via a client certificate with a
long subject DN, if mod_ssl is configured to trust the issuing CA.
Websites running mod_ssl should upgrade to the new set of apache and
mod_ssl packages. There are new PHP packages as well to fix a
Slackware-specific local denial-of-service issue (an additional
Slackware advisory SSA:2004-154-02 has been issued for PHP).
See also :
Update the affected apache, mod_ssl and / or php packages.
Risk factor :
High / CVSS Base Score : 7.5
Family: Slackware Local Security Checks
Nessus Plugin ID: 18790 ()
CVE ID: CVE-2004-0488
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.